System providing self-service access to locked merchandise

ABSTRACT

A system providing self-service access to locked merchandise comprising: (a) providing a fixture that restricts access to the locked merchandise, wherein the fixture can automatically lock or unlock, allowing or restricting access to the locked merchandise; (b) providing a means of uniquely identifying an individual attempting to access the merchandise; (c) measuring a set of behaviors of the individual during any time the fixture is an open mode; (d) assessing whether the set of behaviors of the individual are suspicious or not relative to a set of suspicious event thresholds; (e) storing the individual and their set of behaviors as accessible records in at least one database; and (f) providing an algorithm which determines future access privileges of the individual to the enclosure based on a set of variables.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a Continuation-In-Part of U.S. application Ser. No. 17/737,404 filed May 5, 2022, which is a Continuation of U.S. application Ser. No. 17/197,951 filed Mar. 10, 2021, now U.S. Pat. No. 11,216,827, which is a Continuation of U.S. application Ser. No. 16/940,168 filed Jul. 27, 2020, now U.S. Pat. No. 11,182,803, which claims the benefit of priority from U.S. Provisional Patent Application No. 62/878,747 filed Jul. 26, 2019, the entire contents of which are herein incorporated by reference.

BACKGROUND OF THE INVENTION

There is a universal paradox in retail stores, the better you protect your merchandise from theft, the greater the impact this protection has on product sales. In their effort to reduce theft of merchandise, retailers place restrictions on access to merchandise, impacting the vast majority of legitimate shoppers. The typical outcome is retailers inconvenience 99% of legitimate shoppers to stop theft from the 1% who come into their stores to steal. For example, a common method of reducing theft in a retail environment is to secure high-value merchandise by locking it up in a cabinet or other limited access merchandise fixture that makes it difficult for legitimate shoppers to access the product. To complete a purchase, the shopper must locate a store associate to unlock the fixture, gain access to the merchandise, and ultimately purchase the desired item(s). This process is not only costly and labor intensive for retailers, but it's time consuming, frustrating, and inconvenient, for the shopper, which nearly always leads to a horrible customer experience. This locked fixture approach has existed for year, virtually unchanged, and remains a significant problem for retailers. The primary goal of this invention is to modernize this outdated approach and to provide retailers with a means of protecting merchandise from theft, while creating virtually open access to this high value merchandise by legitimate shoppers, arguably providing retailers with the best of both worlds.

The recent trend of people willing to trade privacy for convenience is advantageous to the invention. More and more people willingly surrendering personal information to more easily access their phones, ATM's, board airplanes and other services. This invention capitalizes on this trend by requiring shoppers to provide personal identifying information in exchange for the convenience of unfettered access to merchandise. A typical example would be a shopper desiring to purchase high-value merchandise secured inside a locked liquor cabinet. Without this invention, the shopper would have to track down a store associate who has to locate the key to open the cabinet and access the goods. This cumbersome, time consuming, and inconvenient process typically results in a loss of 25% to 50% of sales; all this to thwart theft from 1% of the shoppers. Using this invention, a shopper approaching the same locked liquor cabinet is identified by some means, such as facial recognition, the use of the retailer's app or some form of customer loyalty information, and the cabinet automatically unlocks. So long as this same shopper doesn't exhibit suspicious behavior, as described in this disclosure, the cabinet automatically opens each time this shopper returns.

While locking or otherwise securing merchandise reduces or even eliminates theft, it also suppresses legitimate sales due to the inconvenience of or even inability of the shopper to obtain required assistance when and where needed. This inconvenience causes a significant percentage of shoppers to abandon the purchase. The value of these lost sales often exceeds the savings realized by preventing theft. Even worse, shoppers significantly inconvenienced in a store often adversely impacts loyalty (i.e., a regular shopper may choose to switch to a competitive store for future shopping trips), representing a far larger loss than the missed sale of the protected item.

Given this tension between theft and sales losses, retailers often choose sales preservation over loss prevention. It is simply more financially advantageous to suffer theft losses rather than sales losses caused by securing theft-prone merchandise. This invention fundamentally eliminates this tension. It allows product protection from theft even while enabling free access to merchandise by trusted customers. In short, retailers no longer have to choose between protecting products from theft and reducing sales. Instead, legitimate shoppers are provided ready access to protected merchandise while such automatic access is denied to individuals deemed “untrusted” by the retailer. The self-service system described in this invention enables retailers to implement effective loss prevention measures which no longer adversely impacts merchandise sales or the shopping experience. Further, the invention supports loss prevention measures that mitigate both opportunistic shoplifting (typically an individual stealing an item) as well as multi-item sweeps (theft of many items at the same time) typically committed by booster teams as part of large-scale organized retail crime operations.

While the above antitheft scenario inspired the invention, it can also be used advantageously in other situations in which identified individuals that exhibit desired behaviors are rewarded with unfettered access to merchandise or other privileges.

In addition to the sales recovery and customer experience advantages provided by the invention, there are significant labor savings achieved by allowing customers to self-service locked merchandise. A typical transaction requiring a store associate to respond to a customer request to unlock a case can require up to 10 minutes of “task interruption” time for the store associate. From responding to the customer, locating the key, unlocking the cabinet and allowing the customer to shop the case, and then returning to tasking, this often takes 10 minutes. 10 minutes of store associate time is equivalent to ˜$2.50. This cost along with the lost productivity can easily eliminate any profit from merchandise sold in the locked fixture.

Finally, lost keys and re-keying of locked cases is a real problem in retail. Employees misplace keys, they bring them home after their shift, and the mechanism eventually wears out. This not only causes lost sales due to then inability to access the merchandise, but the cost of re-keying fixtures is significant.

SUMMARY OF THE INVENTION

The present invention provides for a system providing self-service access to locked merchandise comprising: (a) providing a fixture that restricts access to the locked merchandise, wherein the fixture can automatically lock or unlock, allowing or restricting access to the locked merchandise; (b) providing a means of uniquely identifying an individual attempting to access the merchandise; (c) measuring a set of behaviors of the individual during any time the fixture is an open mode; (d) assessing whether the set of behaviors of the individual are suspicious or not relative to a set of suspicious event thresholds; (e) storing the individual and their set of behaviors as accessible records in at least one database; and (f) providing an algorithm which determines future access privileges of the individual to the enclosure based on a set of variables. Preferably, the fixture admits or restricts access based on a trusted shopper score assigned to the individual when compared to a trusted shopper score threshold. Most preferably, the trusted shopper score increases when the individual exhibits normal behaviors and the trusted shopper score decreases when the individual exhibits suspicious behaviors. Optionally, at least one database is selected from the group consisting of a customer, a VIP customer, a known offender, a banned customer, a store associate, merchandise vendor, security personnel, and other. Preferably, the system assigns the individual's behavior as either normal or suspicious by comparing the set of behaviors of the individuals relative to interactions with the merchandise contained in the fixture or their interactions with the fixture itself against the set of suspicious event thresholds. Most preferably, the system is capable of deploying a set of real time deterrents once a suspicious behavior threshold is crossed.

In another aspect, the means of uniquely identifying the individual is at least one selected from the group consisting of biometric identification methods, RFID, NFC, bar codes, QR codes, user ID and Passwords, credit or bank cards, driver's licenses, smart phone App's, and cell phones. Alternatively, the fixture restricts access to the merchandise in the fixture through restricting access to the merchandise relative to the individual until access is granted. Preferably, the system further comprises at least one sensor to track and monitor the set of behaviors from the individual.

In yet another aspect, the individual can be associated with a classification of at least one selected from the group consisting of a customer, a VIP customer, a known offender, a banned customer, a store associate, merchandise vendor, security personnel, and other. Preferably, the suspicious event threshold can be determined based on the classification of the individual. Alternatively, individuals classified as authorized store associates have suspicious event and trusted shopper score thresholds set to allow stocking of the fixture without such behavior being classified a suspicious behavior. Preferably, if a request to open the fixture is made by certain high risk classes of individuals, then the system will transmit a class specific response comprising sending a unique identifier (UID) to a store associate. Optionally, a class of individual can be denied access for a specified period of time. Preferably, the suspicious behavior threshold can be automatically set based on a statistical analysis of past behaviors from a number of individuals. Alternatively, a local real-time deterrent is deployed in real time when the suspicious event threshold is crossed. More preferably, the system will transmit a class specific response comprising sending a unique identifier (UID) to a store associate if a request to open the fixture is made by certain high risk classes of individuals. Optionally, a user of the system can enroll known offenders, store associates, vendor personnel, and security personnel into its individual classification database.

The primary purpose of the invention is to maximize sales while minimizing theft. It also maximizes convenience and improves the shopping experience for the vast majority of legitimate shoppers while selectively denying unsupervised merchandise access by likely shoplifters. The invention intelligently enables and disables real time deterrents based on a given shopper's past behaviors and other variables. By uniquely identifying each shopper at a merchandise display fixture and simultaneously observing and recording their behavior, the invention can determine if future product access will be granted to that shopper. Once a shopper exhibits suspicious behavior, anti-theft real time deterrents are deployed during the event, and also during subsequent visits. For example, a legitimate shopper will be granted free access to a locked merchandise cabinet while an “untrusted” individual is denied unsupervised access. This is accomplished by uniquely identifying the person (though not necessarily “by name”) and determining if past behavior or other factors warrant granting that person access to the merchandise. Once access is granted, the invention may trigger local alarms or real time store personnel notification if the shopper exhibits suspicious behaviors resembling theft events in progress. The invention draws upon several methods for uniquely identifying shoppers requesting access to protected merchandise, and several other methods for identifying behaviors deemed normal, undesirable, or suspicious. By coupling the elements of personal identification, product movement sensing technologies, database correlations, and algorithms, access to protected merchandise can be optimally managed.

In certain configurations, the restricted access fixture may contain multiple locked fixtures which are coupled to a single customer facing User Interface and or local controller. This centralized controller provides a single point of individual authentication and facilitates access to the all the associated locked fixtures. Using one method of accessing the multitude of locked cases, the central authentication controller would authenticate the individual requesting access to the locked fixtures as a trusted shopper, once authenticated, all locked fixtures coupled to that controller would open. Once the shopper opens one of the coupled fixtures, the other locked fixtures would re-lock. In another embodiment, the user can select a specific locked fixture of the multiple locked fixtures to access, and only that specific fixture would be opened. For all these multi-locked fixtures use cases, the normal authentication processes, suspicious event detection processes, deterrent activations, employee notifications etc. which are utilized in a single locked fixture configuration would be utilized in this multi-case configuration.

It should be noted that the self-service authentication methods used to access to locked merchandise practiced by this invention are optional and are accessed on an “opt-in basis”. Any customer who is uncomfortable utilizing these identification and authentication methodologies or is uncomfortable trading personal identifying information in exchange for self service access to locked merchandise may simply summon a store associate through the system and the store associate can provide access to the locked merchandise.

Self-Checkout Application & Use of Trusted Shopper Score

This invention has other applications where past behaviors can be monitored to grant or deny privileges in the future. Since the invention correlates uniquely identified individuals with merchandise interaction behaviors, it can also be utilized at other applications such as fixed self-checkout stations as well as self-checkout via the shopper's mobile devices (mobile checkout) to identify “trusted shoppers” who have exhibited repeated good behaviors as well as “untrusted shoppers” who have exhibited suspicious behaviors in the past. As used herein, the terms “fixed self-checkout” and “mobile checkout” are used interchangeably and are referred to collectively as “self-checkout.” For the self-checkout or mobile checkout embodiments of this invention, the shopper would follow a very similar process as when they access the locked case embodiment to access the self-checkout. In effect, they would be trading personal identifying information in order to gain a privilege or convenience such as access to locked merchandise or access to a self-checkout.

-   -   1) The shopper would opt-into the self-service checkout or they         could opt out and presumably receive an assisted self-checkout.     -   2) After opting in, the shopper would provide some form of         personal identifying information to gain access to the         self-checkout.     -   3) The system would use their personal identifying information         to look up their trusted shopper score (assuming they are not a         first-time user).     -   4) First time users are granted access to establish their         trusted shopper score.     -   5) If the shopper is above the trusted shopper score threshold,         they are granted access to the self-checkout.     -   6) If the shopper is below the trusted shopper score threshold,         they would be denied access and optionally, a store associate         would be notified to assist the customer in checking out.     -   7) While the shopper is performing the self-checkout by scanning         merchandise, one or more sensors are monitoring their behavior.         These behaviors can include the following: The number of total         interactions with the system, the number of interactions which         are deemed suspicious, the number of interactions deemed to be         non-suspicious, items moved through the scanning area but not         scanned and then placed in the bagging area, items not moved         through the scanning area and not scanned, scanning items with a         price from a lower cost item, scanning an item and then placing         a different item of the same weight in the bagging area,         scanning all items but then not completing payment, walking         through the self-checkout area without stopping at a scanning         station, purposefully not scanning an item using their cell         phone in a mobile self-checkout scenario, plus several other         fraudulent behaviors designed to either pay a lower price or         outright steal the items by not paying.     -   8) The system stores shopper behaviors in a database for each         use of the self-checkout.     -   9) Statistical models are employed against historical shopper         behaviors to establish the threshold between normal and         suspicious self-checkout behaviors. Often times, a mis-scanned         item is not malicious or intended to commit fraud, it may simply         be user error. In this case, users are allowed to miss a scan,         as long as they correct it once notified of the error in         scanning. These behaviors may be deemed suspicious; however,         they may not affect your trusted shopper score or may have a         minimal effect since many self-checkout customers commit these         errors.     -   10) If a shopper exhibits behaviors that exceed the suspicious         behavior threshold, that transaction is deemed suspicious and         stored in the database.     -   11) An algorithm is utilized to analyze individual shopper's         historical self-checkout behaviors to create a trusted shopper         score.     -   12) An individual's historical self-checkout behaviors are         compared to other shopper's behaviors and using the algorithm,         their trusted shopper score is calculated.     -   13) An individual's trusted shopper score is negatively impacted         when the shopper creates a suspicious event by exceeding the         suspicious event threshold and positively impacted by exhibiting         normal self-checkout behaviors.

In this embodiment, the present invention provides for a system for enabling trusted shoppers to access self-checkout while restricting non-trusted shoppers in a retail environment, comprising:

-   -   (a) providing a means of uniquely identifying an individual         attempting to access the self-checkout;     -   (b) providing one or more sensors for identifying self-checkout         behaviors;     -   (c) measuring a set of behaviors of the individual during a time         when the individual is in proximity of or interacting with the         self-checkout;     -   (d) assessing whether the set of behaviors of the individual are         suspicious or not relative to a set of suspicious event         thresholds;     -   (e) storing the individual and their set of behaviors as         accessible records in at least one database; and     -   (f) providing an algorithm which determines future access         privileges of the individual to the self-checkout by analyzing         their historical behaviors. Optionally, the set of behaviors         measured is at least one selected from the group consisting of         items not passed over the self-checkout price scanner, items not         scanned but passed over the scanner, items scanned but the price         and or barcode does not match the merchandise scanned, scanning         all items but then not paying, being shown a scanning error and         not correcting the error, scanning a low cost item and placing a         higher cost item in the bagging area, the number of total         transactions, the number of suspicious events, the number of         non-suspicious events, having items in your cart which were not         scanned via mobile checkout, and any other behavior intended to         fraudulently receive merchandise without paying or without         paying the actual price of the merchandise. Preferably, the set         of behaviors from each self-checkout interaction event comprises         shopper behavior data and is stored in the at least one         database. Most preferably, statistical models are applied to the         shopper behavior data to calculate the set of suspicious event         thresholds that delineate normal shopping behaviors from         suspicious shopping behaviors. Alternatively, statistical models         are applied to an individual shopper's behavior data to create a         trusted shopper score for the individual shopper. More         preferably, historical shopper behavior data is used to         establish at least one threshold for the trusted shopper score.         Optionally, other shopper data unrelated to the shopper behavior         data can be included in the calculation of the trusted shopper         score. Similarly, the other shopper data unrelated to the         shopper behavior data comprises at least one selected from the         group consisting of historical purchase behaviors, return fraud         behaviors, prior-theft incidence, police reports, credit scores,         case management systems, and other data related to the shopper         purchases or theft behaviors. These thresholds can also be set         manually. Most preferably, shoppers whose trusted shopper score         crosses the at least one threshold of the trusted shopper score         would affect their access privileges to the self-checkout. In         another aspect, the set of suspicious event thresholds are         periodically updated by the statistical models as additional         shopper behavior data is collected by the system. Preferably, at         least one sensitivity variable is used to adjust the calculation         of the set of suspicious event thresholds. In yet another         aspect, the at least one sensitivity variable corresponds to a         percentage of shoppers estimated to be offenders or a database         of risk factors associated with a store.

This Trusted Shopper Score algorithm, whether used for the Locked Case or the any other application of the TSS, can also utilize Artificial Intelligence algorithms to identify “patterns of behaviors” within the individual's historical behavior. Individual behaviors which are suspicious in isolation are not necessarily enough to deteriorate a TSS below the threshold. However, a pattern of behaviors taken collectively may have a larger effect than taking each behavior individually. This effect can be both affect the TSS positively or negatively. Examples include shopper A who exhibit a number of non-suspicious behaviors and then exhibits two or three suspicious behaviors followed by non-suspicious behaviors would remain a trusted shopper. This pattern can be compared to shopper B who initially utilizes the system and their first three transactions are suspicious, this shopper B's trusted shopper score may immediately deteriorate below the TSS threshold whereas shopper A's TSS may not be as impacted. As a result, the algorithm utilizes artificial intelligence to recognize patterns within an individual's behavior that affect their trusted shopper score either positively or negatively.

Alternatively, shoppers who have been denied access to the self-checkout due to their trusted shopper score can get reinstated by providing at least one selected from the group consisting of additional identifying information, financial information, a deposit, and other form of increased security for the retailer or some form of financial guarantee for the retailer.

Preferably, the method of uniquely identifying a shopper is at least one selected from the group consisting of shopper loyalty card information, government issued ID, financial institution cards such as debit cards or credit cards, cell phone numbers, cell phones carried by shoppers which may have local connectivity as a means of identification, a retailer's App which the shopper is logged into, biometric information such as facial recognition, palm ID, finger print readers, or other forms of biometric identifiers, employee ID cards or employee numbers, or any other form of personal identifying information.

In yet another aspect, the system further comprises a real time notification or alarm feature if the set of behaviors of the individual are suspicious relative to the set of suspicious event thresholds. Preferably, the system comprises a means of recording a video or storing images of the individual accessing the self-checkout, the merchandise scanned and the area surrounding the self-checkout before, during and after the self-checkout transaction. In a more preferred aspect, the system further comprises a means of transmitting the video or image to a device viewable by appropriate personnel, including the shopper.

Typical Operating Sequence

While reasonable variations of the operating sequence may be implemented per the detailed description, the following represents a typical operating sequence of the invention.

First, a person desiring access to the locked merchandise fixture encounters a visual display adjacent to the locked fixture which presents the customer with two options, to either call an associate to unlock the fixture in the traditional way, or to use personal identification to enable self-service access to the locked fixture. The customer so indicates their choice by pressing a soft button on the touch screen display.

If the customer selects the self-service option, they are then presented a disclosure statement which provides “informed consent” for the system to utilize personal information for the purpose of unlocking the fixture. If the shopper opts-in and chooses the self-service option, the system takes a “mug shot” of the individual as they are entering their personal identifying information via the built-in camera. If the system is using biometrics such as facial recognition to uniquely identify the shopper, a visual and/or audible message then instructs the user to look directly at the camera typically located above the display. The display presents the customer with an image of the shopper from the embedded camera. The customer aligns their face with a box on the screen, thus providing a perfect “mug shot” of the individual. The system then compares the biometric information with a database of shoppers to determine if this individual is a “trusted shopper” and will be allowed access to the locked case.

Once the customer is determined to be a trusted shopper, the lock releases and the display indicates the fixture is open. The customer opens the case and removes the desired merchandise. The system counts the units removed from the fixture while open, how long the case is open, how many times the individual has accessed the case in various periods of time, and how often a shopper has accessed any system. The case then automatically locks once the fixture is closed utilizing the auto closing feature. The customer's personal identifying information merchandise removal, and other behaviors are data logged in the system database.

In the event the shopper exhibits a set of behaviors that exceeds a per-determined suspicious event threshold, the system can deploy local real-time deterrents and/or notify store associates.

If the shopper is a known offender or is a shopper who has exhibited repeated suspicious behaviors in the past, they will be denied self-service access to locked merchandise and the system notifies a store associate to open the locked fixture and provide “supervised access” to the locked merchandise.

In the case of denial of self-service access, a store associate is notified and once enrolled in the system, the store associate can use their own personal identifying information to unlock the case without the need for keys.

There are multiple methodologies for achieving the operating sequence described above and the detailed description that follows illustrates the various methodologies and sensor which can be used to achieve this operational sequence.

BRIEF DESCRIPTION OF DRAWINGS

The novel features of this invention, as well as the invention itself, both as to its structure and its operation, will be best understood from the accompanying drawings, taken in conjunction with the accompanying description, in which:

FIG. 1 illustrates an exemplary embodiment of a fixture with user interface of the present invention;

FIG. 2 illustrates an alternative exemplary embodiment of a fixture with user interface of the present invention;

FIG. 3 illustrates an alternative view of the fixture of FIG. 2 ;

FIG. 4 illustrates an alternative exemplary embodiment of a fixture with user interface of the present invention;

FIG. 5 illustrates an exemplary user interface of the present invention;

FIG. 6 illustrates an alternative exemplary embodiment of a fixture with user interface of the present invention;

FIG. 7 illustrates an alternative exemplary embodiment of a fixture with user interface of the present invention; and

FIG. 8 illustrates an overview of the self-access system present invention.

DETAILED DESCRIPTION OF THE INVENTION

The invention is best understood by first gaining insight into the types of sensors and devices which are coupled together to enable its operation. Keeping in mind that a specific attribute of the invention is that is the operation of the invention is not dependent on any one specific sensing or merchandise access restriction technology. Three categories of sensors and devices are typically integrated to operate the invention:

-   People identification sensors capable of uniquely identifying an     individual; -   Merchandise interaction (customer behaviors) sensors. -   Real-Time Deterrents Merchandise protection and suspicious behavior     notification devices;

Using the information and controllable access provided by these device categories, the invention determines if a given person is considered “trusted” and will be granted merchandise access. A more detailed description of each category follows.

Person Identification Sensors

The invention requires a method of uniquely and repeatedly identifying each person for which the invention is considering granting merchandise access. As these sessions may occur on different days, at different locations within the store, and even at different stores the identification method must remain accurate even when an individual wears different clothes, hair styles, etc. The invention also identifies store associates and allows them, once registered, access to merchandise for stocking purposes. The invention's core functionality does not require identifying the person “by name,” though some ancillary benefits, described later, may be realized with this functionality.

Any method of identification meeting the above requirements are acceptable. These include but are not limited to:

-   -   Facial recognition using video cameras;     -   Other biometric methods, such as iris recognition, fingerprint         detection, or any other biometric detection that can uniquely         identify an individual;     -   RFID, Bar Code, QR Code, and other methods integral to a card or         other device issued by the store (such as a loyalty card         selectively provided to customers by the store);     -   Government issued ID cards such as a driver's license, passport         or trusted traveler card;     -   Financial institution cards such as debit cards, credit cards or         other financial institution cards which can be a source of         identification.     -   Cell phones carried by shoppers which may use local connectivity         (e.g., WiFi, Bluetooth and/or NFC) as a means of identification;     -   Smart phones carried by shoppers that are logged in to the         retailer's app (the login considered adequate proof of         identification), using the onboard wallet which contains bank         cards or credit card information as a source of identification;     -   Using onboard biometric identification capabilities on smart         phones carried by shoppers, then relaying this confirmation to         the invention via the retailer's App, by presenting the         shopper's phone screen (displaying a QR or similar code) to the         invention's camera, or via a text message; the transaction could         be initiated on the shopper's phone resulting in identification         confirmation to the invention or the shopper could scan a QR or         similar code displayed by the invention to automatically launch         the identification process and the installed retailer's App on         the shopper's phone;     -   Smart phones carried by shoppers accessing a web site that         performs biometric identification; this method does not require         an installed retailer's App on the shopper's phone and could be         automatically launched by scanning a QR or similar code at the         fixture.     -   Employee ID cards which contain an employee number which         uniquely identifies the employee. Employee access cards which         could otherwise be used to access the building;     -   Any other device or method issued by the retailer which uniquely         identifies the individual

Location Confirmation of Identified Persons

Some methods of person identification inherently confirm the physical presence of the person at the locked fixture. For example, facial recognition by a camera at the fixture. However, some identification methods described above using the shopper's smart phone do not provide this assurance, making it possible to intentionally or accidentally unlock a fixture from a remote location, which is undesirable. Methods to confirm physical location in such situations include but are not limited to:

-   -   Short Range Wireless Connectivity with Shopper's Smart Phone:         Typically using Near Field Communication (NFC) or Bluetooth,         both of which have limited range but NFC being the most         suitable;     -   Location Based Services Detecting Shopper's Smart Phone: WiFi         services providing “triangulation” methods;     -   Dynamic QR Codes: While a shopper's phone could scan a QR Code         label affixed at the fixture location, a photo of that QR Code         could be used at any time and any place to inappropriately         trigger an unlock command. To avoid this, Dynamic QR Codes         displayed by the invention, or a nearby discrete device, change         periodically or even with every transaction.     -   Two step authentication: Entering a cell phone number into the         on-board touchscreen display and subsequently receiving a text         message and entering the code contained in the text message into         the display.

Merchandise Protection and Suspicious Behavior Notification Devices

The invention is typically used with one or more devices providing a means of securing and/or limiting access to merchandise. A requirement of these devices is a means by which control signals from the invention may allow or deny complete and/or limited access to the protected merchandise. The possible types of devices that could meet this requirement are virtually unlimited; some examples:

-   -   Locked Cabinets/Doors: Typically, an electronically activated         locking device grants or denies access to the protected         merchandise behind the door. These range from fully enclosed         cabinets to flip doors in front of merchandise shelves to         refrigeration doors opened to access beer or other high-theft         merchandise;     -   Dispensing Display Fixtures: A wide variety of devices fit this         category which includes: peg hooks with a knobbed spiral coil         that must be turned to permit removal of one item at a time;         push button devices that dispense one item when pressed (much         like a vending machine); merchandise “pushers” that keep a         facing of merchandise pressed tightly against the front of a         shelf; and specialized fixtures (such as for canned baby         formula) that rely on a specific form factor for limiting the         number of units dispensed. Whether the operating mechanism is         largely mechanical or electronic, all compatible devices can be         controlled by the invention to permit (or not) dispensing of one         or more of the protected products or, in the case of pushers, to         disable the pushing function to limit access to merchandise.     -   Movable Fence: Any kind of sliding or pivoting fence that can be         moved to gain access to the product.

Fixture Status Sensors

All of the fixtures the invention is compatible with would have sensor on the door/fence/dispensing mechanism which can detect the status of the fixture, namely, is the fixture “open” in the sense that merchandise can be accessed, or is it “closed” in the sense that access to the merchandise is restricted or is inaccessible in the closed state.

Real Time Deterrents

Anti-theft deterrent devices can be controlled by the invention including various communication, notification, and alarms devices. Using product removal information from internal sensors such as the merchandise movement sensors, fixture status sensor, camera tampering sensor etc., to detect suspicious events the invention can trigger local deterrents such as notifying store personnel and/or activating local deterrence devices which may be local alarms, local voice announcements, flashing lights, audio such as PA announcements, turn on cameras, or any other traditional ant-theft deterrent device which would deter the offender from proceeding with the theft.

In one possible configuration, merchandise may not be physically protected from access but rather the invention notifies store personnel and/or activates local deterrence devices mentioned above when an “untrusted” person is detected interacting with or removing merchandise.

Customer Behavior Sensors, Merchandise Interaction Sensors

It is desirable, though not always required, that sensors inform the invention of the characteristics of the customer's set of behaviors including merchandise interaction by the identified individual accessing the merchandise. This may include the following detections (and possible invention characterizations):

-   -   No merchandise removed (typically considered a non-event);     -   One item removed, possibly including identification of the         specific merchandise item (a normal shopper purchase);     -   Multiple items removed within normal shopper patterns (likely         not considered a suspicious event);     -   Rapid or other abnormal removal of multiple items (a suspicious         event).     -   Multiple items removed of the same product beyond normal shopper         patterns (likely a suspicious event)     -   Replacement of product, as in a merchandise replenishment or         stocking action by a store associate or simply a customer         changing their mind about a purchase.     -   Door open duration: how long the door is open after an         individual is granted access.     -   Frequency of visits to any locked case in the system. It is also         considered suspicious of an individual access cases in the         system too frequently even if each individual transaction is         normal behavior.     -   Concealment of merchandise once removed from the invention.     -   Removal of a large number of items with one action (taking three         or more items in your hand at one time and removing them from         the invention)     -   Purposeful tampering of the sensors or camera of the invention.     -   Multiple failed attempts to access the invention.     -   Using fraudulent credential to access the invention.

The invention is not dependent on any specific method of detecting these interactions or behaviors and it is to be understood that not all acceptable methods of detection are capable of providing all of the interaction characterizations listed above. The type of merchandise interaction sensor is typically determined and/or limited by the merchandise protection method used (e.g., locking case, peg hook, etc.). Generally, any sensor capable of providing at least some insight into the nature of merchandise interaction can be used by the invention. These sensors have the common capability of measuring product interaction and some have the additional capability of measuring inventory and specific product SKU level information. These sensing technologies include, but are not limited to, the following:

-   -   Cameras (including 3D cameras) with integral or post-processing         artificial intelligence capabilities able to detect merchandise         interactions which may include detection of a hand. penetrations         into an open fixture, and quantity of items held in a hand         during removal; these cameras can also count the number of units         before and after a transaction, thereby “netting” the number of         items removed less the number replaced. These cameras could also         be equipped with Artificial Intelligence capable of detecting         the type of merchandise contained in the fixture down to the SKU         level. This SKU data is a useful input to both the TSS         algorithm, for stocking and replenishment purposes, and also for         correlating items removed from the fixture with items         subsequently purchased at the checkouts.     -   Vibration sensors able to detect the movement of merchandise         on/off shelves, peg hooks, and other displays;     -   Switches (including magnetic switches and similar) detecting         merchandise removal on dispensing display fixtures commonly         known as pushers or smart peg hooks.     -   Weight measuring pads that can determine the number of items on         a shelf.     -   Light detecting devices which can determine the location and         number of items on a shelf.     -   RFID tags which can be detected by a receiver and count units         being removed from a fixture or being replaced. This technology         can also uniquely identify the product down to the SKU level.         This SKU data is a useful input to both the TSS algorithm and         for stocking and replenishment purposes.     -   Smart Fixtures: any fixture with sensing technology that can         determine units being removed from a fixture and also the         inventory position of each product contained in the fixture.         This inventory data is a useful input for stocking and         replenishment purposes.     -   Sound detection: fixtures which detect an audible sound related         to product removal     -   Door open sensors which can identify when and for how long the         door to the invention are open.     -   As individuals attempt to access the invention, their behavior         during the authentication process is also monitored and stored         in the database. These behaviors include entering fraudulent         information, multiple failed attempts at gaining access, and         defeating the cameras while attempting to gain access.     -   Tamper detection: all of the above sensors can be configured to         sense when an individual is attempting to tamper with the         sensor, notifying the invention of any abnormal situation         indicative of a tampering situation.

As noted previously, not all of these methods can reliably provide all possible merchandise interaction characteristics. However, the invention can be configured to optimize for best use of those characterizations that can be provided.

The Trusted Shopper Algorithm and Development of the “Trusted Shopper Score”

An individual's privileged access to secured merchandise is determined by an algorithm which takes as its primary input this individual's behavior during each fixture access event. Based on the individual identification methodology utilized by the invention, the algorithm may have access to databases containing multiple additional attributes (,e. metadata) related to this individual which enable to the algorithm to consider these additional attributes to make more informed merchandise access decisions. These additional individual attributes are summarized in the section below entitled Shopper Metadata. This Metadata is used to place individuals into a “classification”.

Past shopping behaviors, combined with these Metadata attributes resulting in an individual's classification are inputs to the algorithm and are used to develop a Trusted Shopper Score or TSS. This TSS is a numerical score which can be compared to a programmable Trusted Shopper Score threshold set by the retailer as the basis for ongoing access to locked merchandise. In fact, as different merchandise carries different risks of theft, the retailer could program each individual locked fixture with its own unique TSS threshold based on the merchandise contained in that fixture.

Past Shopping Behavior and Trusted Shopper Score

Each time the individual demonstrates trustworthy behavior during a fixture access event, the algorithm increases that person's TSS. Likewise, detected undesirable behavior (such as abnormal merchandise interaction activity and permitting “tailgating” or allowing other shoppers access to an open fixture) results in the reduction of that individual's Trusted Shopper Score. Once established, the Trusted Shopper Score is compared to a TSS threshold established by the retailer and as long as the individual remains above the threshold, future access privileges are maintained. If an individual's TSS drops below the threshold, the system will deny unsupervised access to the merchandise and will summon a store associate. For example, an aggressive TSS threshold might deny unsupervised access based on one suspicious merchandise interaction. In this aggressive example, a single incidence of unacceptable behavior effectively revokes that shopper's privileged access rights.

There are many reasons a retailer may not elect such an aggressive threshold. After all, retailers do not want to alienate loyal shoppers and often are more concerned about sales losses than theft losses. Since it is possible that acceptable behavior may occasionally be incorrectly perceived as unacceptable, a more lenient threshold could be warranted such that a complete loss of unsupervised access occurs only when a very serious and definitive breach of behavior is detected and/or when multiple suspicious events are detected or a pattern of unacceptable behavior has occurred.

Another input to the algorithm is simply the passage of time. For example, when a shopper removes a large number of units from a fixture, this behavior is generally viewed as suspicious and would negatively affect their TSS. This could result in denied unsupervised access. However, this behavior may have been instigated by an in-store sale or may simply be forward buying behavior based solely on a discounted price or promotion. If a shopper forward buys several packs of razor blades for example, the algorithm may drop their TSS sufficiently to be restricted from accessing any locked merchandise. After the passage of a specified period of time, the algorithm would increase their TTS to an acceptable level to allow self-service access again. The algorithm may also allow the same individual to be granted access to other merchandise while being restricted from accessing razor blades for a specified period of time.

Accordingly, the set of shopping behavior factors that may be considered by the algorithm include, but are not limited to:

-   -   Immediate past behavior event     -   Multiple past behavior events     -   Patterns of behavior (such as attempts to “game the system” like         alternating acceptable behavior and theft behavior to gain         tokens)     -   Accuracy of sensing technology: The ability to detect suspicious         behaviors is based on the type of behavior detection sensors;         for example, dispensing devices typically have a very high         accuracy on the quantity and specific merchandise removed while         vibration detection devices are less accurate; video sensing         accuracy is often dependent on camera placement and merchandise         type.     -   Value of merchandise subjected to unacceptable removal.     -   Specific SKUs removed.     -   Time between past and current attempts to access the         merchandise.     -   Shopper history; purchasing history; registered membership in         store programs; store App utilization; and/or long and frequent         loyalty would be considered more trusted;

The inclusion and/or weighting of the above factors are used either alone, or in combination with Shopper Metadata, and the individual's classification by the algorithm and result in a “Trusted Shopper Score” for that individual. The retailer then sets a TSS threshold which is used by the invention in evaluating merchandise access requests to locked fixtures. This same TSS may be used by other store systems for granting levels of shopper permissions, such as unsupervised self-checkout, use of store portable scanning devices, and other privileged services, or virtually any service which otherwise would require supervision by store personnel.

Penalty for Crossing the Trusted Shopper Score Threshold

When a shopper crosses the trusted shopper score threshold, they will be denied self-service access to the fixture. This denial-of-service period can be for a specified period of time depending on the level of the TSS. For example, if the TSS falls slightly below the threshold, a one-week denial of service could be invoked. If the TSS drops significantly below the threshold, the individual may be denied self-service access for a month or more. If the individual is detected concealing merchandise or removing a substantial amount of merchandise, that individual may be denied self service access for a year or perhaps permanently.

Anti-Fraud Applications for First Locked Fixture Interactions

The configuration variables of the invention enable the retailer to determine how to initiate new shoppers into the system. For example, the algorithm could be configured such that all first-time users (except those in the pre-existing “Known Offender” database, described later) are considered trusted and provided privileged access. So long as acceptable behavior is observed on the initial and subsequent interactions, access privilege is granted.

An alternative implementation might require shoppers to register or “opt-in” to the system (e.g., via a loyal shopper program or other identification means described above) as a prerequisite to being granted privileged access. By opting into the system, the shopper would then be granted greater shopping convenience. In this case, identification of the individual could link to a known “by name” loyal shopper database.

To prevent a would-be thief from committing a theft the first time they use the system, a time delay may be introduced to prevent the first-time user from self-service access for a programmable period of time. 48 hours for example. By inserting this access delay, this would frustrate the thief and cause them to abandon the theft. It would also act as an additional deterrent, providing the thief with the impression that his credentials are being “investigated and authenticated”. Utilizing the Cell Phone/Text method this prevents thieves from using so called burner phones to gain initial access.

In another embodiment, other types of delays may be introduced. For example, when using the loyalty card method of access, the user may be required to complete one or several transactions linked to their loyalty card prior to gaining self-service privileges. In another example, when using the retailer's App or Loyalty card information, the user may be required to have purchased a certain dollar amount of merchandise, or complete a certain number of legitimate transactions prior to gaining self-service privileges.

In all of the above examples, the goal is to stop a would-be thief from fraudulently signing up for a loyalty card, or logging into a retailer's App, using a fraudulent cell phone number. simply to gain access to the locked case for theft purposes.

Self-Calibration of Suspicious Event Thresholds

As previously noted, if the quantity of items removed from a monitored fixture exceeds the suspicious event threshold, that transaction is deemed a “Suspicious Event” and the shopper associated with the action will be placed in a time out condition and have their TSS negatively impacted (depending on the incident and other factors comprising their Trusted Shopper Score). The removal of an extreme quantity of merchandise in a single transaction, however, would exceed an even higher suspicious event threshold defining a “Sweep Event”. Even an individual with a high Trusted Shopper Score would likely be severely penalized if associated with a Sweep Event.

An acceptable number of product removals will vary based the type of merchandise contained in the locked fixture. As the number of locked fixtures utilizing the invention grows, a single retailer may have thousands of cases utilizing this self-service invention. Manually determining, configuring, and maintaining appropriate event thresholds, especially the Suspicious Event threshold across thousands of locked fixtures across hundreds of stores, can become very time consuming and perhaps impractical to manage. The fine line between a reasonably normal shopping quantity and a somewhat excessive quantity can vary by merchandise assortment, store location, and even season of the year. The invention's threshold self-calibration function automates this task by periodically adjusting the Suspicious Event threshold based on a statistical analysis of customer behaviors over time.

Other behaviors which the invention measures which would also be subject to the auto-calibration algorithm to statistically analyze and establish suspicious event thresholds includes but are not limited to the following:

-   -   1) Net units removed from the fixture in a single transaction.         This is the net of units removed and units replaced in the same         transaction.     -   2) The net units removed from the fixture which represent an         “excessive” number of units removed (such as a sweep event).     -   3) The duration the movable door is in an open state.     -   4) The number of times a unique user accesses the same fixture         in a defined unit of time (for example: 24 hours, 48 hours, 72         hours, one week etc.).     -   5) The number of times a unique user accesses any fixture in the         system of fixtures in a defined unit of time (for example: 24         hours, 48 hours, 72 hours, one week etc.).

Self-calibration requires the retailer to establish an initial Suspicious Event Rate by estimating the percentage of transactions representing Suspicious Events. For example, the retailer may estimate (as is generally the case) that 98 of its shoppers are trusted and legitimate, and therefore 2% of its shoppers are potential offenders. This estimate represents the percent of fixture opening events that would likely be related to theft events. This percentage establishes the Suspicious Event Rate. After an initial statistically relevant number of fixture opening events, the system would then automatically adjust the Suspicious Events Threshold (defined as the number of unit removals determined to be suspicious) based on actual measured product removal behavior observed by previous shoppers according to the percent threshold set by the retailer. The invention's self-calibration algorithm retains product removal data from each opening event and uses that data to calculate a suspicious event threshold based on the suspicious event rate indicated by the retailer. In this example, the number of units removed by the top 2 percent of shoppers would be deemed Suspicious Events. The invention then periodically adjusts the threshold on a rolling basis to take into account possible merchandise changes, sale events, and other external factors that would affect the number of product removals from the locked fixture.

This self-calibration algorithm uses statistical methods to eliminate “outliers” representing non-standard behaviors which would otherwise skew the Suspicious Event Threshold or other system data in general. For example, if the top 2% of shopper merchandise interactions contain non-standard behaviors, the self-calibrating algorithm would determine if these interactions are non-standard outliers, and remove these outliers from the calculation of the suspicious event threshold. To illustrate this scenario, if one or more of the 2% of shoppers used to establish the suspicious event threshold were to take 500% more than the remainder of the top 2% of shoppers, this could skew the average for this group and could impact one of the methods for calculating the suspicious event threshold. Removing these outliers will create a more accurate suspicious event threshold based on more standard behaviors.

These statistical methods also provide a means of conditioning the data to remove outlier events which are non-standard events which could skew the data. Normal statistical methods and norms are utilized by the invention to condition the data and remove these outliers prior to applying the statistical analysis and establishing the suspicious event thresholds.

The invention requires initial suspicious event thresholds to be established such that the system can operate prior to sufficient data collection is completed and the auto-calibration to take effect and adjust the suspicious event thresholds. These “default” thresholds are utilized by the invention until the auto-calibration adjusts according to historical user behaviors.

The invention also provides the ability for system operators to override the auto-calibration features and to manually enter suspicious event thresholds which would be fixed in nature and not automatically adjust. This override functionality can be applied to any of the measured behaviors individually.

This self-calibrating algorithm may accept external metadata and individual classification as inputs to more specifically calibrate each individual fixture and dynamically change the suspicious event threshold according to changes in merchandise, pricing, or other external factors that may affect product removal behaviors. This meta data may include but is not limited to the following; SKU level information about what merchandise is contained in the locked case (no matter how this data is collected), RFID information, planogram information, pricing data, as well as promotional information, weather events, any natural disaster events, civil unrest, or any other metadata which is likely to affect product removal behaviors.

It is advantageous to eliminate known merchandise stocking data from the self-calibration algorithm. In the event the system has access to metadata and is aware of individual classifications such as store associates, vendors or other non-customers accessing the locked fixture and the associated re-stocking events, the self-calibrating algorithm would ignore product interaction data associated with non-customer-initiated re-stocking events (or customer assistance requests for denied or opt-out customers). In this way, the algorithm may more accurately determine normal product removal thresholds without the additional outliers created by stocking events or other non-customer generated product removal events.

The Role of Metadata Databases and Integration With Other Store Systems

The invention's benefits can be enhanced through access to various Metadata (other data from independent databases which can be correlated to an individual attempting to access the case). The following Metadata could be used to enhance an individual's classifications, their trusted shopper score, and other purposes:

-   -   Registered Loyal Shoppers Database—as noted previously, customer         loyalty card information can be useful as a means of rewarding         loyal customers by initiating privileged access. The shopper's         purchase history, total spend, unique shopping habits, duration         in the membership program, and overall loyalty may be considered         by the Trusted Shopper algorithm in deeming certain actions         acceptable.     -   Financial Information: A shopper who uses a debit card or a         credit card to access the case could provide information about         their financial condition. These factors such as credit score,         bank balances, credit limits etc. can provide an enhanced risk         profile for individuals attempting to access the case.     -   Purchase history of a shopper—by accessing a shopper's personal         shopping history, the TSS algorithm may provide for a more         lenient treatment of suspicious events committed by shoppers who         spend over a threshold with a retailer. This allows for the         avoidance of denying self-service access by a retailer's highest         spending customers.     -   Known Offender Database—includes known perpetrators such as         convicted shoplifters, suspected booster gang members, and other         individuals banned from privileged access. This database can be         an integration of data provided by local law enforcement,         through the retailer's own case management system, or other         known offender databases. Known offenders are denied         self-service access but may still access the merchandise by the         system notifying a store associate to unlock the fixture. The         system can notify the store associate and communicate that a         known offender is requesting access to the locked merchandise,         allowing the associate to follow alternate product protection         protocols such as bringing the merchandise to the cashier rather         than handing it to the offender. Further, in the case of         unsecured but monitored merchandise, merchandise interaction by         those shoppers identified as known offenders will result in         immediate store associate notification actions as well as         deployment of local deterrents, as described earlier. It is         especially noteworthy that the known offender Database is not         exclusive to a specific store location but is a composite from         across multiple stores in that retailer's chain and perhaps even         shared information from other retailers.     -   Store Associates Database—includes the identity of all store         employees and is used to provide ready access to secured         merchandise to the associate in the course of assisting shoppers         not granted self-service privileged access; further, since the         act of re-stocking merchandise can be interpreted by some         sensors as a theft occurrence, an authorized store associate         would avoid this determination (for this reason, the system may         also refer to the time clock system database to verify the store         associate is on duty as a condition to ignoring what would         otherwise be deemed a suspicious event). This database can be         coupled to the retailers HRIS system which can automatically         enroll and remove store associates as they are hired and         terminated from the company. Additionally, this data would be         used by the self-calibrating algorithm to ensure only customer         product removal data is used in determining the suspicious event         thresholds.     -   Vendor Employee Database—in some cases, retailers ask         merchandise vendors to re-stock shelves with their products. In         these cases, non-retailer employees may be granted access to the         locked cases the same way store associates are granted access.         Much like the Store Associates Database, this provides identity         and authorization information (e.g., which merchandise         locations) regarding vendors who may re-stock certain         merchandise.     -   Video Management Systems: If video is used as a sensing         technology or if the merchandise is monitored by in-store video         surveillance, this video stream can be “bookmarked” by the         system to enable auditing of system performance as well as the         identification and possible apprehension of offenders who         exhibit suspicious behaviors.     -   Self-Checkout Auditing: Increasingly retailers are employing         self-checkouts. These self-checkouts have auditing procedures         which can identify individuals who fail to scan all items or         otherwise cheat the system. If individuals are uniquely         identified using this process, this database can be integrated         into the TSS algorithm to make better access decisions.         Alternatively, once a shopper exhibits suspicious behavior at         the locked case, if that customer is also identified at the         self-checkout, the attendant may be notified to assist that         shopper and ensure the items removed were properly checked out.     -   SKU Level Product Data: Awareness of the products contained in         the case is useful to the TSS algorithm to more precisely set         suspicious event thresholds. It is also useful for stocking and         replenishment purposes, as well as compliance with retailer         policies for which products should be placed in the fixture.     -   Gender, Age, and Mood Data: When using biometric or other         personal identification methodologies, these systems are capable         of determining age, gender and even mood. These inputs are         useful to the system in identifying customers who may need         assistance. This information is also useful to the retailer for         marketing and merchandising by identifying the demographics of         the customers who are accessing certain SKUs. This information         can be used to display more targeted advertisements on the         display of the invention or other specific local advertising         vehicles.

When Merchandise Access is Denied or Delayed

In the event a shopper's Trusted Shopper Score is below the TSS threshold and requested access is denied, the invention summons assistance to meet the customer's needs; methods include:

-   -   Customer Assistance Request: An audio or text message is sent         via communication devices carried by store associates or even         over the PA system. The reason for the denial (for example, an         unknown shopper vs. a known offender) can result in different         messaging and resulting actions. In this example, and depending         on store policy, associates may simply unlock the fixture and         hand the desired merchandise to the unknown shopper while the         associate may be required to accompany a known offender to         checkout or leave the merchandise at checkout for the known         offender to purchase on the way out;     -   Video Streaming: Making use of the invention's optional camera,         video display, microphone, and speaker, an automatic         live-streamed connection may be established between the shopper         at the fixture and a store associate (who may or may not         actually be in the store); depending on the situation, the         associate may remotely command the fixture to unlock or may         elect to physically go to the fixture or direct another         associate to do so to assist the customer.

In some situations, there may be a delay before merchandise access is granted. For example, a retailer may elect to deter losses by configuring the system to include a hold-off time for unlocking a fixture between requests from the same shopper or possibly even different shoppers; invoking a hold-off and its duration may be influenced by the recent pattern of openings as well as the requestor's Trusted Shopper Score. In such a situation, the display provides a countdown or other indication of the holdoff to encourage the shopper to wait.

Applying Trusted Shopper Score to Self-Checkout and Exit Audits

Retailers are increasingly installing self-checkout stations in their stores at which shoppers scan and pay for their own purchases. Not surprisingly, this process is vulnerable to theft (such as not scanning all items taken by the shopper). Another method of self-checkout enables shoppers to use mobile scanning devices provided by the store or even their own smartphone loaded with a store app to perform checkout as items are selected on the sales floor and placed directly into bags or in a shopping cart. This is even more vulnerable to theft as individuals can easily drop some items into the bags without scanning or even exit the store without scanning any items at all.

The invention can help reduce this theft activity in three ways:

-   -   Self-Checkout Behavior as in Input to the TSS Score: Most         self-checkout systems incorporate various devices, such as         analytical video monitoring or product weight measuring devices         to detect possible theft activity. Such detections can serve as         an input to the trusted shopper score algorithm and could result         in triggering a mandatory exit audit of a shopper's receipt         against items in their cart, require a “supervised checkout” by         a store associate on future visits, or a complete suspension of         self-checkout privileges should a pattern emerge.     -   Protected Merchandise not Scanned: As previously described, the         invention uses various sensors to detect removal of high-value         merchandise from secured and, in some cases, unsecured         locations. This merchandise removal may be associated with a         specific individual. If the removed merchandise is subsequently         not scanned by the same individual through a checkout process,         the algorithm may characterize that action as an unacceptable         behavior that may trigger a receipt audit or lead to revocation         of merchandise access and/or self-checkout privileges.     -   Selective Exit Auditing: As a further action related to either         self-checkout method, detection of removed merchandise not being         scanned could result in the trust algorithm triggering a         notification or other signaling method such that as the         individual approaches a store exit, their purchases may be         subjected to an exit audit to verify scanning accuracy.

Advertising, Marketing and Couponing Functions of the Invention

The invention by its very nature has a “captive audience” in terms of a shopper standing in front of a fixture containing specific merchandise. In addition, leveraging metadata and an individual's classification data, advertising can be customized. This is an ideal environment for targeted advertising to this individual in an attempt to influence their purchase behavior. This advertising capability is integral to the invention and represents “high value real estate” to any potential advertiser.

The means of advertising is common and not important to the invention. It can be either audio or audio/visual. This can be delivered through the invention's built in audio capability, an external speaker, the invention's built-in display, an auxiliary display located either on the fixture of adjacent to the fixture. Virtually any means of providing promotional messaging can be utilized.

Selecting the right type of advertisement is core to the invention. The type of advertisement can be selected based on a range of inputs. From very simple, such as what merchandise is contained in the case, to complex, utilizing personal information, metadata and an individual's classification related to the individual requesting access to the locked merchandise. Utilizing this information, the system can deliver significantly more targeted, and therefor more effective advertisements. These advertisements can be brand advertisements, promotions such as advertising a sale or special promotion. They can also be general store ads such as credit card promotions or loyalty membership benefits.

The following represent certain use cases for the advertising and marketing functions of the invention.

Merchandise Contained in the Case: In the case where the system is aware of the merchandise contained in the case, either manually entered by the retailer or detected by the merchandise movement sensor, the system can provide intelligent advertising related to and specific to the merchandise contained in the case. This can be product category advertisements or it can be brand specific ads. If the system can detect when a certain SKU is sold out, a similar product can be suggested.

Personally-Identified Shoppers: In some configurations of the invention, the system knows the shopper “by name”. This is the case when the identification methodology is a shopper's loyalty card number, or a retailer's App for example. Once shoppers trade personal identifying information for the convenience of self-service access, the system knows who is accessing the merchandise. This information can be used by the system to provide more targeted advertisements, especially when a shopper's metadata is leveraged. For example, VIP customers can be identified and provided a “thank you” messaging to promote brand loyalty.

Anonymously-Identified Shoppers: In some configurations, the shopper is identified uniquely but given an anonymous User ID. In this case, the system can keep track of the shopper over time but does not know the shopper's identity. In this case, the system is aware of the products located inside multiple fixture and, based on accumulated shopper purchase behavior identified by which locked cases they have accessed, the system can play targeted advertisements when this shopper is detected dwelling in front of the fixture, or when this shopper is accessing the merchandise.

Age, Gender, and Mood Identified Shoppers: In some configurations, age, gender and mood data is added to the shopper identification. This information can be used as an input to select appropriate advertising messaging.

Shopper Dwell: The system is capable of detecting shopper dwell in proximity to the fixture using integrated dwell sensors. In some cases, this sensor cannot uniquely identify the shopper, in other cases, such as with beacons or geofencing via the retailer's app, the system can personally identify the shopper. In this scenario, advertisements can be played enticing shoppers in proximity to the fixture to purchase merchandise contained in the fixture.

Couponing: As part of the invention's marketing functions, it has the ability to dispense coupons either generally to all individuals, or selectively based on the customer data is has available. Armed with customer data, the system can choose when to dispense a coupon. VIP customers or the Retailer's Loyalty Members may be given a coupon, while non-VIP or non-loyalty customers do not.

Dynamic Couponing: If the system has the capability to detect which products are chosen from the fixture, a real-time coupon could be presented to the shopper in an attempt to influence their product selection. In a competitive situation, coupons can be dynamically dispensed based on the initial brand selection in the case. For example, if product from Brand A is selected, a coupon for Brand B can be presented. If the shopper initially selects Brand B, no coupon is provided.

In general, the system can accept inputs from any and all customer specific information, metadata sources, and its own sensor data to make intelligent decisions about advertising and couponing.

Non-Biometric Face Detection

Due to privacy concerns related to facial recognition and other forms of biometric data collection, some retailers may balk at adopting certain embodiments of the system described above. The alternative method described below avoids these concerns while still delivering many of the system's benefits.

It is noteworthy that one of the few theft prevention technologies retailers report as effective, even when used over an extended time, is the Public View Monitor (PVM). This ubiquitous device, seemingly installed in every retail store, is simply a video display with an embedded camera such that the viewer sees him or herself in the display. These are generally located at store entrances or at certain high risk merchandise. Some models provide a visual and/or audio indication when motion is detected to promote the inference of active detection. The implication is the video stream is being monitored and/or recorded. However, most PVM's are not even connected externally, much less monitored or recorded. Still, perpetrators are left to contemplate . . . are they watching? Often, the choice is to not take the chance, resulting in theft deterrence.

The alternative embodiment described here combines the uncertainty instilled by PVM's and with the deterrence of locked merchandise. Much like the invention described earlier using biometric means of uniquely identifying shoppers, shoppers desiring to purchase protected merchandise may do so by simply providing an acceptable image of their face (or other biometric information). This means of accessing locked merchandise is significantly more convenient than calling a store associate. In addition to deterring theft, this approach also averts sales loses typical of secured merchandise and boosts productivity since store staff need not repeatedly go to the merchandise to assist the shopper.

Detailed Description of the Non-Biometric Method

The following elements typically comprise implementation of this method:

-   -   Video Module: Includes a video display, an audio speaker, at         least one (hard or soft) button, and optionally, a         wired/wireless external connectivity provisions. Connectivity         enables the Video Module to accept information from local         sensors, if used, and to communicate with other devices and         systems on the store's network, to include communication         devices, monitoring stations, and servers. The Video Module is         physically small enough to minimize merchandise obstruction and         is adjustable to permit aiming the camera to capture the face of         users of varying heights, including those in wheelchairs.     -   Electronically Controlled Lock: As variety of theft mitigation         merchandise fixtures can be outfitted with the invention, the         actual locking mechanism will vary. The primary embodiment         employs a solenoid or magnetic locking control. Depending on the         configuration, a switch or other sensor (which may be a separate         device or integral to the locking mechanism) may monitor the         fixture to confirm return to its secure state (such as a door in         the closed position). Note that some configurations may not use         a lock, as described later.

While reasonable variations of the operating sequence may be implemented, the following is typical.

First, a person desiring access to the locked merchandise so indicates by pressing a hard or soft button on the touch screen display

A visual and/or audible message then instructs the user to look directly at the camera typically located above the display. The display presents the customer with an image of the shopper from the embedded camera. The customer aligns their face with a box on the screen, thus providing a perfect “mug shot” of the individual Upon detection of a face, a tracking box optionally appears around the face and/or a captured image of the face is displayed. No facial recognition occurs; merely detection that someone's human face has been presented to the camera.

After presence of the face has been detected, a short delay (typically, 3 seconds) occurs to infer processing of the image. Some may assume facial recognition and even identity database lookup is occurring during this time, though that is not the case. Various visual and/or audio cues may be presented during this time. For example, a yellow frame may appear on the perimeter of the display and the words “Processing” displayed and possibly spoken.

At the end of the delay, the lock is released, allowing the shopper to select the desired merchandise therein.

During the time merchandise is made available, merchandise removal detection sensors as described above (such as fixture vibration monitoring devices, video, pressure mats, peg hook and pusher dispense counters, and other technologies) detect the quantity of items being removed. If that quantity exceeds the suspicious event threshold also described above, the event is deemed “suspicious” and, depending on system configuration, the system may deploy a local deterrent such as a notification over the system's display, an audible alarm, flashing lights or turn on an external anti-theft deterrent and/or immediately create an alert notification to store staff, local loss prevention personnel, or a remote monitoring station. Such notification is typically accompanied by the image or video captured when merchandise access was granted.

The image of the person granted access remains on the screen until the transaction terminates, the determination of which depends on fixture type and system configuration. Three methods define termination:

-   -   Return to Secure State (Door)—This is typically detecting the         return of a door on a locked cabinet or a flip door on a         merchandise gondola to its closed state. It applies to other         securement methods in which releasing the lock permits a person         to open a door or other device then, after obtaining the desired         merchandise, the door or other device is returned to the closed         position, which is detected by the system using a switch or         other sensor.     -   Controlled Dispense (“Vending” Fixture)—Some secure merchandise         fixtures operate similar to a vending machine in which, once         access is granted, a person takes an action to dispense one (or         possibly more) items. For example, baby formula is a frequently         stolen item so is sometimes displayed in a fixture allowing only         one item to be removed at a time. Another example are the many         methods of limiting access to merchandise typically displayed on         peg hooks—from electronically locking peg hooks to “corkscrew”         manual twist devices that don't prohibit access but slow it         down. In these and many similar applications, an electronic         locking mechanism can be fashioned and controlled by the         invention.     -   Timed Access (Open Fixture)—In some situations, there may be no         physical barrier to the merchandise. For example, a vast         cosmetics assortment would be difficult or undesirable to         obstruct with a physical barrier. In this situation the Video         Monitor can be used in conjunction with methods to sense people         interacting with merchandise. There exist numerous sensing         methods for this including cameras, vibration sensors, infrared         virtual fences, pressure mats, and more). Once a face has been         detected, the Video Monitor permits access to this merchandise         for a defined period of time and/or a quantity of accesses         (penetration of hands into the merchandise area), then warns         that the interval is ending. Accessing merchandise outside of         this time interval can trigger a low level alarm, such as the         Video Monitor providing an audio message that access granting is         required or, if access persists, a higher alarm level such as         notifying loss prevention personnel.

After termination of access (such as the shopper closing the door), no additional access requests will be processed throughout a configurable hold-off period, such as 30 or 60 seconds. The purpose of this hold-off period is to deter a thief from repeatedly accessing the locked merchandise and, with each access, removing a quantity of items below the suspicious event threshold. The system can be further configured to detect a suspicious pattern of repeated access which, itself, can trigger a suspicious event and/or result in the system going into lockdown mode, disabling further self-service access for a time and/or until reset by local or remote personnel.

Yet another possible system action under such suspicious circumstances is for the Video Monitor to immediately establish a real time video call with a store associate's communication device (e.g., a smart phone or similar) or to a staffed computer at a remote monitoring station. Should the subsequent conversation warrant, the store associate or monitoring station personnel can command an unlock through the communication device or computer.

Likewise, should a shopper request access during the hold-off period, the system may be configured to immediately notify a store associate that assistance is needed at that location or, as noted previously, a video call may immediately be established with appropriate personnel who can remotely unlock the merchandise, if warranted. Alternatively, if obstacles to accessing store personnel are anticipated, the video display may provide messaging to encourage a requesting shopper to wait until the hold-off period expires.

The Video Monitor is capable of providing other benefits when not serving its primary function. For example, promotional information, including videos, regarding the protected merchandise could be displayed. Another available function is simply as a camera with a unique view accessible to the store's local or remote video monitoring station. 

We claim:
 1. A system for enabling trusted shoppers to access self-checkout while restricting non-trusted shoppers in a retail environment, comprising: (a) providing a means of uniquely identifying an individual attempting to access the self-checkout; (b) providing one or more sensors for identifying self-checkout behaviors; (c) measuring a set of behaviors of the individual during a time when the individual is in proximity of or interacting with the self-checkout; (d) assessing whether the set of behaviors of the individual are suspicious or not relative to a set of suspicious event thresholds; (e) storing the individual and their set of behaviors as accessible records in at least one database; and (f) providing an algorithm which determines future access privileges of the individual to the self-checkout by analyzing their historical behaviors.
 2. The system of claim 1, wherein the set of behaviors measured is at least one selected from the group consisting of items not passed over the self-checkout price scanner, items not scanned but passed over the scanner, items scanned but the price and or barcode does not match the merchandise scanned, scanning all items but then not paying, being shown a scanning error and not correcting the error, scanning a low cost item and placing a higher cost item in the bagging area, the number of total transactions, the number of suspicious events, the number of non-suspicious events, having items in your cart which were not scanned via mobile checkout, and any other behavior intended to fraudulently receive merchandise without paying or without paying the actual price of the merchandise.
 3. The system of claim 1, wherein the method of uniquely identifying a shopper is at least one selected from the group consisting of shopper loyalty card information, government issued ID, financial institution cards such as debit cards or credit cards, cell phone numbers, cell phones carried by shoppers which may have local connectivity as a means of identification, a retailer's App which the shopper is logged into, biometric information such as facial recognition, palm ID, finger print readers, or other forms of biometric identifiers, employee ID cards or employee numbers, or any other form of personal identifying information.
 4. The system of claim 2, wherein the set of behaviors from each self-checkout interaction event comprises shopper behavior data and is stored in the at least one database.
 5. The system of claim 2, wherein statistical models are applied to the shopper behavior data to calculate the set of suspicious event thresholds that delineate normal shopping behaviors from suspicious shopping behaviors.
 6. The system of claim 5, wherein the set of suspicious event thresholds are periodically updated by the statistical models as additional shopper behavior data is collected by the system.
 7. The system of claim 1, wherein at least one sensitivity variable is used to adjust the calculation of the set of suspicious event thresholds.
 8. The system of claim 7, wherein the at least one sensitivity variable corresponds to a percentage of shoppers estimated to be offenders or a database of risk factors associated with a store.
 9. The system of claim 1, wherein the system further comprises a real time notification or alarm feature if the set of behaviors of the individual are suspicious relative to the set of suspicious event thresholds.
 10. The system of claim 1, wherein the system comprises a means of recording a video or storing images of the individual accessing the self-checkout, the merchandise scanned and the area surrounding the self-checkout before, during and after the self-checkout transaction.
 11. The system of claim 9, further comprising a means of transmitting the video or image to a device viewable by appropriate personnel, including the shopper.
 12. The system of claim 1, wherein statistical models are applied to an individual shopper's behavior data to create a trusted shopper score for the individual shopper.
 13. The system of claim 12, wherein historical behavior data from the individual shopper's behavior data are used to establish at least one threshold for the trusted shopper score.
 14. The system of claim 13, wherein shoppers whose trusted shopper score crosses the at least one threshold of the trusted shopper score would affect their access privileges to the self-checkout.
 15. The system of claim 12, wherein other shopper data unrelated to the shopper behavior data can be included in the calculation of the trusted shopper score.
 16. The system of claim 15, wherein the other shopper data unrelated to the shopper behavior data comprises at least one selected from the group consisting of historical purchase behaviors, return fraud behaviors, prior-theft incidence, police reports, credit scores, case management systems, and other data related to the shopper purchases or theft behaviors.
 17. The system of claim 1, wherein shoppers who have been denied access to the self-checkout due to their trusted shopper score can get reinstated by providing at least one selected from the group consisting of additional identifying information, financial information, a deposit, and other form of increased security or enhanced financial guarantees for the retailer.
 18. The system of claim 1, wherein the algorithm utilizes artificial intelligence to recognize patterns within an individual's behavior that affect their trusted shopper score either positively or negatively. 